T-MobileSenior Program Manager
Jan. 2018Bellevue, WA · Hybrid• Leading the Insider Threat Program - Partners with Cyber Leadership, Human Resources, and Corporate Investigations teams daily; partners and leads incident engagement
• Initiated the largest internal threat actor reporting portal for retail; over 14 threat actors identified in 27 days • Coordinated with multiple vendor and internal teams to institute a deception monitoring and data exfiltration program
• Developed and matured alerting, policies, and technical controls to detect and mitigate the risk of insiders and malicious actors; constantly iterating to account for change in environment and threat actor activity
• Planned and ran multiple company-wide classes about internal data security and Insider Threat
• Collaborated with vendors and internal teams (Insider Threat, Bug Bounty, Cyber Threat Intelligence) to institute metrics, KPI/KRI to optimize and control effectiveness, measure efficacy, and demonstrate best in class protection
• Implemented initial use of Microsoft Insider Risk Module (MS IRM) under Microsoft Purview as a technical solution; daily review and synthesis of alerts, cases, and escalations – over 1400 alerts reviewed in the first month